Details of VAR-202606-3181

ID

VAR-202606-3181

CVE

CVE-2026-0413

DESCRIPTION

A buffer overflow vulnerability due to insufficient input validation in the listed NETGEAR models allows authenticated administrators connected to the local network to make unauthorized modification of router software and functionality.

Trust: 1.0

sources: NVD: CVE-2026-0413

AFFECTED PRODUCTS

vendor:	netgear	model:	rbs840	scope:	lt	version:	7.2.8.5	Trust: 1.0
vendor:	netgear	model:	rbre960	scope:	lt	version:	7.2.8.5	Trust: 1.0
vendor:	netgear	model:	rbs750	scope:	lt	version:	7.2.8.5	Trust: 1.0
vendor:	netgear	model:	rbs860	scope:	lt	version:	7.2.8.5	Trust: 1.0
vendor:	netgear	model:	rbr860	scope:	lt	version:	7.2.8.5	Trust: 1.0
vendor:	netgear	model:	rbse950	scope:	lt	version:	7.2.8.5	Trust: 1.0
vendor:	netgear	model:	rbe770	scope:	lt	version:	10.5.20.10	Trust: 1.0
vendor:	netgear	model:	rbs850	scope:	lt	version:	7.2.8.5	Trust: 1.0
vendor:	netgear	model:	rbr840	scope:	lt	version:	7.2.8.5	Trust: 1.0
vendor:	netgear	model:	rbse960	scope:	lt	version:	7.2.8.5	Trust: 1.0
vendor:	netgear	model:	rbre950	scope:	lt	version:	7.2.8.5	Trust: 1.0
vendor:	netgear	model:	rbr850	scope:	lt	version:	7.2.8.5	Trust: 1.0
vendor:	netgear	model:	rbe370	scope:	lt	version:	12.1.2.1	Trust: 1.0
vendor:	netgear	model:	rbr750	scope:	lt	version:	7.2.8.5	Trust: 1.0

sources: NVD: CVE-2026-0413

CVSS

SEVERITY

CVSSV2

CVSSV3

nvd@nist.gov:	CVE-2026-0413
value:	MEDIUM
Trust: 1.0
a2826606-91e7-4eb6-899e-8484bd4575d5:	CVE-2026-0413
value:	MEDIUM
Trust: 1.0

nvd@nist.gov:	CVE-2026-0413
baseSeverity:	MEDIUM
baseScore:	4.5
vectorString:	CVSS:3.1/AV:A/AC:L/PR:H/UI:N/S:U/C:N/I:H/A:N
attackVector:	ADJACENT
attackComplexity:	LOW
privilegesRequired:	HIGH
userInteraction:	NONE
scope:	UNCHANGED
confidentialityImpact:	NONE
integrityImpact:	HIGH
availabilityImpact:	NONE
exploitabilityScore:	0.9
impactScore:	3.6
version:	3.1
Trust: 1.0

sources: NVD: CVE-2026-0413 // NVD: CVE-2026-0413

PROBLEMTYPE DATA

problemtype:

CWE-121

Trust: 1.0

sources: NVD: CVE-2026-0413

EXTERNAL IDS

db:

NVD

id:

CVE-2026-0413

Trust: 1.0

sources: NVD: CVE-2026-0413

REFERENCES

url:	https://www.netgear.com/support/product/rbe770/	Trust: 1.0
url:	https://www.netgear.com/support/product/rbs860/	Trust: 1.0
url:	https://www.netgear.com/support/product/rbse950/	Trust: 1.0
url:	https://www.netgear.com/support/product/rbr860/	Trust: 1.0
url:	https://www.netgear.com/support/product/rbre950/	Trust: 1.0
url:	https://www.netgear.com/support/product/rbs750/	Trust: 1.0
url:	https://www.netgear.com/support/product/rbse960/	Trust: 1.0
url:	https://www.netgear.com/support/product/rbs850/	Trust: 1.0
url:	https://www.netgear.com/support/product/rbr750/	Trust: 1.0
url:	https://www.netgear.com/support/product/rbre960/	Trust: 1.0
url:	https://www.netgear.com/support/product/rbr840/	Trust: 1.0
url:	https://kb.netgear.com/000070811/june-2026-netgear-security-advisory	Trust: 1.0
url:	https://www.netgear.com/support/product/rbr850/	Trust: 1.0
url:	https://www.netgear.com/support/product/rbs840/	Trust: 1.0
url:	https://www.netgear.com/support/product/rbe372/	Trust: 1.0

sources: NVD: CVE-2026-0413

SOURCES

db:

NVD

id:

CVE-2026-0413

LAST UPDATE DATE

2026-06-19T23:34:37.800000+00:00

SOURCES UPDATE DATE

db:

NVD

id:

CVE-2026-0413

date:

2026-06-18T17:57:25.547

SOURCES RELEASE DATE

db:

NVD

id:

CVE-2026-0413

date:

2026-06-09T17:16:58.777